International Organization for Standardization
ISO (International Organization for Standardization) standards are technical agreements which provide the framework for compatible technology worldwide. ISO enables an organization with a single reference point for identifying a range of controls needed for most situations where technology is used, which in turn promotes trading in a trusted environment. ISO standards such as ISO/IEC 27000:2009 and ISO/IEC 27002:2005 provide organizations with an internationally recognized structured methodology, with a defined process to evaluate, implement, maintain, and manage information security and a set of tailored policy, standards, procedures and guidelines. Such standards provide a measurement against which security and other areas can be judged.
Deloitte member firm professionals are certified in various ISO standards, have unrivalled experience in many countries and cultures, and have lead auditors in place across most continents.